diff options
| author | Michael Gapczynski <mtgap@owncloud.com> | 2013-02-26 13:31:15 -0500 |
|---|---|---|
| committer | Michael Gapczynski <mtgap@owncloud.com> | 2013-02-26 13:31:15 -0500 |
| commit | 9a2ca0ae6404169062c2d66b89b8bc5fe2fc45af (patch) | |
| tree | ea0cc04fc8b9fda4a5aea0ab9f1fddb636481e11 /lib/public | |
| parent | 81c664697b810d591b6b106bce7fde707c465e8f (diff) | |
| download | nextcloud-server-9a2ca0ae6404169062c2d66b89b8bc5fe2fc45af.tar.gz nextcloud-server-9a2ca0ae6404169062c2d66b89b8bc5fe2fc45af.zip | |
Check resharing setting
Diffstat (limited to 'lib/public')
| -rw-r--r-- | lib/public/share.php | 26 |
1 files changed, 24 insertions, 2 deletions
diff --git a/lib/public/share.php b/lib/public/share.php index 37cf0838ed1..8146a23f360 100644 --- a/lib/public/share.php +++ b/lib/public/share.php @@ -61,6 +61,7 @@ class Share { private static $shareTypeGroupUserUnique = 2; private static $backends = array(); private static $backendTypes = array(); + private static $isResharingAllowed; /** * @brief Register a sharing backend class that implements OCP\Share_Backend for an item type @@ -568,6 +569,24 @@ class Share { } /** + * @brief Check if resharing is allowed + * @return Returns true if allowed or false + * + * Resharing is allowed by default if not configured + * + */ + private static function isResharingAllowed() { + if (!isset(self::$isResharingAllowed)) { + if (\OC_Appconfig::getValue('core', 'shareapi_allow_resharing', 'yes') == 'yes') { + self::$isResharingAllowed = true; + } else { + self::$isResharingAllowed = false; + } + } + return self::$isResharingAllowed; + } + + /** * @brief Get a list of collection item types for the specified item type * @param string Item type * @return array @@ -840,7 +859,10 @@ class Share { continue; } } - + // Check if resharing is allowed, if not remove share permission + if (isset($row['permissions']) && !self::isResharingAllowed()) { + $row['permissions'] &= ~PERMISSION_SHARE; + } // Add display names to result if ( isset($row['share_with']) && $row['share_with'] != '') { $row['share_with_displayname'] = \OCP\User::getDisplayName($row['share_with']); @@ -978,7 +1000,7 @@ class Share { throw new \Exception($message); } // Check if share permissions is granted - if ((int)$checkReshare['permissions'] & PERMISSION_SHARE) { + if (self::isResharingAllowed() && (int)$checkReshare['permissions'] & PERMISSION_SHARE) { if (~(int)$checkReshare['permissions'] & $permissions) { $message = 'Sharing '.$itemSource .' failed, because the permissions exceed permissions granted to '.$uidOwner; |